This project was forked and is evolving at this address: https://github.com/mulbc/vaultPass
This repository is old, please follow the development process at the link above. You can also install the plugin from the Chrome web store.
Thanks @mulbc for working on this plugin!
Attempt in creating chrome extension for Hashicorp Vault
A project started on a Hackathon @ ironSource, the company I work for right now. During free time I will attempt to finalize this into a complete usable Chrome extension, that allows interaction with Hashicorp Vault server.
- Connect to Vault and get Token
- Get list of potential credentials in Popup
- Select credentials from popup and have them filled into the website
Vault needs to be prepared to use this extention.
This extention expects secrets to be saved in the 'secret' mount path (the default KV store).
The path in this mount should be /vaultPass/[someOrg]/url where:
someOrgwill be some organisational level in your company to separate access levels- You can activate and deactivate these "folders" in options
urlis a URL or part of it that the credentials should match for- Be aware that Vault does NOT support * characters (and potentially others...) as names!
- It should have at least the keys
usernameandpasswordwith the respective information
- Get a Token via the options page of this extention
- Create application specific Token instead of using the user-token
- Nicer UI
- Write (new) credentials to Vault
- Remove synchronous GET request for credentials in popup.js
Tested with Vault 1.0.0